search

laurivosandi / certidude

Easy to use Certificate Authority web service for OpenVPN, StrongSwan and HTTPS
MIT License
126 stars 30 forks source link

Show relevant error message if CSR is malformed #56

Open laurivosandi opened 5 years ago

laurivosandi commented 5 years ago

Some ideas for malformed CSR-s:

laurivosandi commented 5 years ago

No CN whatsoever:

-----BEGIN NEW CERTIFICATE REQUEST----- MIIDQjCCAioCAQAwADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALPF Lc1RUPldhGv7SOS2WwnrX2vuRuDTJA/J3rmt21Z9KR9kF0j8MN6xh8pd3/S6puFt kVsS24WOj9LY7h9+Du4lPX9E9MIAIPkdBTVkEI21tUDIZMGTHFHN5QDiVaOB5x6y 6+e1eNBX8foGDEHXid1MRM8g+PffIVAlqF47Jp0yNzD3MYFwd1HT3ZskQ3IMd1Vt kAcFj5NvHYXju/jPm0hsoAetx0YETGbyvY0ZqzoaPmpRv7VEiEW37Mx6voBVpSwP x4nVxXn2659oxmw0Zv/wfh0XJCYz0nxoRzP0iIDqzezUmOV7xIOp25ROc7SHETG3 /kvF6N2OqQtBaV+wc2UCAwEAAaCB/DAcBgorBgEEAYI3DQIDMQ4WDDEwLjAuMTcx MzQuMjAuBgkqhkiG9w0BCQ4xITAfMB0GA1UdDgQWBBQW816sRWHliWIBmDAa3hLT dO5DqDBEBgkrBgEEAYI3FRQxNzA1AgEFDA9ERVNLVE9QLVRPTkFJNkwMFkRFU0tU T1AtVE9OQUk2TFxNb2hzZW4MB01NQy5FWEUwZgYKKwYBBAGCNw0CAjFYMFYCAQAe TgBNAGkAYwByAG8AcwBvAGYAdAAgAFMAbwBmAHQAdwBhAHIAZQAgAEsAZQB5ACAA UwB0AG8AcgBhAGcAZQAgAFAAcgBvAHYAaQBkAGUAcgMBADANBgkqhkiG9w0BAQsF AAOCAQEAK2yumEFmkZ9tYU8iGehjmQu15sDK6JZ7EBL12c0STH3nfcP4BqrSxSu3 UA3yQKtXR3g896jwhSTOrFy3iC2u73YK8AM2etyLirbTQLZiTcHhvD/NeuILgrD+ KD/dy9rNXx+8bLgdIU4xNeWioRPgA+urDY2nUSKbhHt0TjCClDuutEGiO/IqQVMX bgqGntWqGxTsmt/HhfU6EZ1yJ/WIyPPgk1f6BtKyWV0/JFbdZY+XHKU0u9Z9o3VN 5zh1Ong8qf3P+h6ijxicxQ4syScOPm6mJirRzNkhbG50rl+s9DewCrraiC5NsaCI I11in2a7JrD+RiLNTBPPH/rMZ+Hm2g== -----END NEW CERTIFICATE REQUEST-----

laurivosandi commented 5 years ago

Another example of missing CN:

-----BEGIN CERTIFICATE REQUEST----- MIICrjCCAZYCAQAwaTELMAkGA1UEBhMCQVoxDTALBgNVBAgMBEJha3UxDTALBgNV BAcMBEJha3UxDTALBgNVBAoMBGlXZWIxCzAJBgNVBAsMAklUMSAwHgYJKoZIhvcN AQkBFhFpbGh1c2VAdGFsdGVjaC5lZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALi495ZmfOgAudaKEdtaOY+rhpJpTS/8Nv6Xi1IovoONzMWWl4inFM9g htUI1zXerG9wr52IAvCcZqfSGv3mF1vukXETj8eOCCBbfdlKuKibbIudIoXxlOie tzU+Pd+40BY6m5S04AVUsTeU4npVG8V+Ieh8f11jKn2k8RfA35/WLjCeaxb2zgv+ xroSafAqgza/wRYJZeV8Umq9vGY91anYspikusTz8cxG5aRtCLgrANXHAypipWlk hLyybCh3NbcU5BMSLWYWXPMhbLiujJzAcdHp7scXFITay8gwEW+EEGbHhtoeSctv NTlM/15zOzBZPNGD/xz03sasXVXuFusCAwEAAaAAMA0GCSqGSIb3DQEBCwUAA4IB AQBdKpsZ9Xd/2QVSDJ6+xLvQtqTmbcT7bgw2ebhAXfzsr9wptTEbWbb9q/c4iGVJ zpZoXw0KM1VwPWUz2GTFK6/VZNTe42OUzv2i3vmIYdBvgP8MLlTBe5NNEUzu/Pev jV47Hml92vdML1bznaDp04dJgIuRBH00DDLXaYYmD0p0YrdukDKECA1iDJTdugUh pcvUu1RCrmU/QIyN4x8Dl6DFOW76BGyHP+W9hAdrEAcF2MBuc/afvJPMaLGb8kQd kZo1xlqS1wEt8/Xuh3zuAeWuKlI6id60HckuzhilUiUul4riyjG1QJeiyeBMGRof eAmzsw1sL73aT5qbBORNf5pp -----END CERTIFICATE REQUEST-----